Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moodle Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2022-0335 - Vulnerability Database
Moodle

Moodle Cross-Site Request Forgery (CSRF) Vulnerability - CVE-2022-0335

High
Reference: CVE-2022-0335
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-0335
Title: Moodle Cross-Site Request Forgery (CSRF) Vulnerability
Overview:

A flaw was found in Moodle in versions 3.11 to 3.11.4 3.10 to 3.10.8 3.9 to 3.9.11 and earlier unsupported versions. The quotdelete badge alignmentquot functionality did not include the necessary token check to prevent a CSRF risk.